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SUBSTITUTE SPECIFICATION MARKED TO SHOW CHANGES 



PORTABLE KEYING DEVICE AND METHOD 



Background of the Invention 

1 .Field of the Invention FIELD OF THE INVENTION 

[0001] The present invention relates generally to transaction terminals, and particularly to 
the installation of security keys in transaction terminals. 

2. Technical Backgroun d BACKGROUND OF THE INVENTION 

[0002] Electronic terminals such as point of sale (POS) terminals are becoming 
ubiquitous in our society. These terminals include credit, debit, and check authorization 
capabilities. Some of these devices are used as stand alone devices and some are networked 
using LAN technology. Because of the sensitive financial information being transmitted and 
received by these electronic terminals, security is a critical issue. In order to provide security, 
electronic terminals employ data encryption. Encryption devices scramble readable data to 
produce cipher text. Most of the terminals use an encryption key as part of the encryption 
process. An encryption key is a block of data that is combined with the readable input data to 
produce the cipher text. For example, the encryption key and the input data can be combined 
using an exclusive OR function. On the other hand, the Data Encryption Standard (DES) 
algorithm is often used to combine an encryption key with input data to produce the cipher 
text. The DES algorithm employs a 56 bit encryption key to produce the cipher text. The use 
of an encryption key is considered to be more secure than scrambling the input data. 

[0003] Another security issue relates to tamper protection. Typically, all secure 
information such as encryption keys are stored in SRAM or PROM. In one approach, if the 
processor detects a downloading operation that may result in security information being 
compromised, the processor deletes the security information. 

[0004] In another approach, tamper detection switches are employed to prevent physical 
tampering of the terminal. If the top enclosure of the terminal is separated from the main 
printed circuit board, or if the "trap door" is opened in the bottom of the enclosure, the 
detection switches are thrown. The operating system of the terminal is programmed to erase 
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the security information in response to the signals received from the switches. In another 
approach, ultrasonic bonding is often used to provide evidence that someone attempted to 
open the terminal device. 

[0005] While the above described methods are effective in terms of preventing or 
monitoring tampering, there are problems associated with these methods. Under certain 
circumstances the security information loaded into the electronic terminal must be changed or 
updated. Oftentimes it is desirable to change the security information loaded into the 
electronic terminal at the factory before the first use. At this point, the terminal must be 
shipped to the factory or to a servicing organization to be reprogrammed. Subsequently, the 
terminal is unboxed, the anti-tampering features are deactivated, the security information is 
reloaded, the terminal re-bonded and the terminal is repackaged. These steps are inefficient, 
time consuming and costly. 

[0006] What is needed is a method of securely reprogramming the security information in 
an electronic terminal without having to remove the terminal from its shipping container, 
dismantle the terminal, deactivate the anti-tampering features, reload the security 
information, and re -bond the terminal. Further, what is needed is a method of securely 
reprogramming the security information in an electronic terminal without having to ship the 
terminal off site. 

Summary of the Invention SUMMARY OF THE INVENTION 

[0007] A portable encryption, key installation system is disclosed that includes a portable 
keying device for installing a data communications encryption key in an electronic terminal. 

[0008] The present invention addr e ss e s th e n ee ds discuss e d abov e . Th e pr e s e nt inv e ntion 

provid e s a syst e m and m e thod for s e cur e ly r e programming the security information in an 
e l e ctronic t e rminal without having to ship th e terminal off sit e . Th e pr e s e nt inv e ntion 
provid e s a system and m e thod for s e cur e ly r e programming th e s e curity information in an 
electronic terminal without having to r e mov e th e t e rminal from its shipping container, 
dismantl e th e terminal, d e activat e th e anti tamp e ring f e atur e s, r e load th e security 
information, and r e bond th e t e rminal. 
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[0009] On e aspect of tho pr e s e nt inv e ntion is a portabl e k e ying d e vic e for installing a data 

communications encryption k e y in at l e ast on e e l e ctronic terminal. The e l e ctronic t e rminal 
includ o s a s e cur e e ncryption k e y memory location for storing at least on e data 
communications e ncryption k e y. Th e d e vic e includ e s a memory d e vic e for storing tho at 
l e ast one data communications e ncryption k e y. A communications unit is coupl e d to tho 
m e mory device, tho communications unit b e ing op e rativ e to transmit th e at least on e data 
communications e ncryption key in a predetermined format to th e electronic t e rminal. 

[00010] In anoth e r aspect, th e pr e s e nt inv e ntion includ e s a m e thod for installing a data 

communications e ncryption key in an e l e ctronic t e rminal. Th e e l e ctronic terminal including 
a secure e ncryption k e y m e mory location for storing th e at l e ast on e data communications 
e ncryption k e y. Th e m e thod includ e s: providing a portabl e keying d e vic e , wh e r e by the 
portable k e ying d e vic e is physically separat e d from the e l e ctronic terminal; p e rforming a 
handshaking routin e , wh e r e by th e k e ying d e vic e and th e e l e ctronic t e rminal e xchange 
handshaking messages; transmitting an e ncryption k e y from th e portabl e k e ying d e vice to the 
e l e ctronic t e rminal; and storing th e e ncryption k e y transmitt e d from th e portable keying 
d e vic e to th e e l e ctronic t e rminal in th e s e cur e k e y memory location. 

[0001 1] In y e t anoth e r asp e ct, th e pr e s e nt inv e ntion includes a portabl e key installation 

syst e m for installing a data communications e ncryption k e y. Th e syst e m includ e s at l e ast one 
e l e ctronic t e rminal having a s e cure e ncryption k e y m e mory adapt e d to stor e th e at least on e 
data communications e ncryption k e y, and a t e rminal communications unit coupl e d to th e 
s e cur e e ncryption key memory. A portabl e k e ying d e vic e includ e s a memory adapted to 
stor e the at l e ast one data communications e ncryption k e y, and a d e vice communications unit 
coupl e d to tho memory device, tho device communications unit being adapted to bi 
directionally communicat e th e at l e ast on e data communications e ncryption k e y in a 
pred e t e rmin e d format to th e t e rminal communications unit. 

[00012] Additional featur e s and advantag e s of th e inv e ntion will b e s e t forth in th e 

d e tail e d d e scription which follows, and in part will b e r e adily appar e nt to thos e skill e d in th e 
art from that d e scription or r e cogniz e d by practicing th e inv e ntion as described h e r e in, 
including th e d e tail e d d e scription which follows, th e claims, as w e ll as th e app e nd e d 
drawings. 
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[000 13] It is to b e undorotood that both the for e going g e n e ral d e scription and th e following 

detail e d d e scription ar e mer e ly e x e mplary of th e invention, and ar e int e nd e d to provid e an 
ov e rvi e w or fram e work for understanding tho nature and character of the inv e ntion as it is 
claim e d. The accompanying drawings ar e included to provid e a furth e r understanding of the 
inv e ntion, and ar e incorporat e d in and constitut e a part of this sp e cification. Th e drawings 
illustrat e various e mbodim e nts of th e inv e ntion, and togeth e r with th e d e scription s e rv e to 
explain tho principl e s and op e ration of the inv e ntion. 

Brief Description of the Drawings BRIEF DESCRIPTION OF THE DRAWINGS 

[00014] Figur e Fig . 1 is a diagrammatic depiction of a portable key installation system in 
accordance with one embodiment of the present invention; 

[00015] Figur e Fig . 2 is a perspective view of a portable key installation system depicted 
in Figure Fig. 1 ; 

[000 1 6] Figur e Fig . 3 is a chart showing a method for installing a security key in an 
electronic terminal using a portable device; 

[0001 7] Figur e Fig . 4 is a chart showing a method for installing security keys in a plurality 
of electronic terminals using the portable device; 

[00018] Figur e s Figs . 5 A and 5B are [[a]] diagrammatic depictions of an electronic 
terminal in accordance with a second embodiment of the present invention; 

[000 1 9] Figur e Fig . 6 is a diagrammatic depiction of an electronic terminal in accordance 
with a third embodiment of the present invention; and 

[00020] Figur e Fig . 7 is a diagrammatic depiction of an electronic terminal in accordance 
with a fourth embodiment of the present invention. 

Detailed Description DETAILED DESCRIPTION OF THE INVENTION 

[00021] Reference will now be made in detail to the present exemplary embodiments of 
the invention, examples of which are illustrated in the accompanying drawings. Wherever 
possible, the same reference numbers will be used throughout the drawings to refer to the 
same or like parts. An exemplary embodiment of the portable key installation system of the 
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present invention is shown in Figur e Fig . 1 , and is designated generally throughout by 
reference numeral 10. 

[00022] In accordance with the invention, the present invention for a portable key 
installation system includes a portable keying device for installing a data communications 
encryption key in an electronic terminal. The electronic terminal including a secure 
encryption key memory location for storing the at least one data communications encryption 
key. The portable keying device includes a memory for storing the at least one data 
communications encryption key. A processor that is operative to generate a secure 
installation message, the secure installation message including the at least one data 
communications encryption key. A communications unit is coupled to the processor. The 
communications unit is operative to transmit the installation message in a predetermined 
format to the electronic terminal. 

[00023] Thus, the present invention provides a system and method for securely 
reprogramming the security information in an electronic terminal without having to ship the 
electronic terminal off site. The present invention provides a system and method for securely 
reprogramming the security information in an electronic terminal without having to remove 
the electronic terminal from its shipping container, dismantle the terminal, deactivate the anti- 
tampering features, reload the security information, and re-bond the terminal. 

[00024] As embodied herein, and depicted in Figure Fig . 1 a diagrammatic depiction of a 
portable key installation system in accordance with one embodiment of the present invention 
is disclosed. System 10 includes portable keying device 100 and electronic terminal 200. 

[00025] Portable keying device 100 includes I/O circuit 12, processor 14, RAM 16, 
EROM 18, key memory 20 and RF controller 22 coupled by way of system bus 28. RF 
controller 22 is connected to RF transceiver 24. RF transceiver 24 is connected to antenna 
26. In one embodiment, I/O circuit 12 is coupled to a keypad which is used to input the 
encryption key. In yet another embodiment, an initial key download is performed via the 
keypad or the external device. Subsequently, processor 14 uses the initial key to generate 
encryption keys for a plurality of devices by running a secure key generation algorithm. 

[00026] It will be apparent to those of ordinary skill in the pertinent art that modifications 
and variations can be made to processor 14 of the present invention depending on cost and 
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programming considerations. For example, in one embodiment processor 14 is implemented 
using an 8 bit "programmable system-on-a-chip" device, of the type manufactured by 
Cypress Semiconductor. One of ordinary skill in the art will recognize that 16 bit and 32 bit 
devices can also be used, in addition to other 8 bit devices. 

[00027] It will be apparent to those of ordinary skill in the pertinent art that modifications 
and variations can be made to EROM 1 8 and key memory 20 of the present invention 
depending on cost, security, and re-programmability considerations. In one embodiment key 
memory 20 is actually a memory location within EROM 18. For example, in the 8 bit micro- 
controller embodiment, EROM 18 and key memory 20 are implemented using 32kbytes of 
embedded ROM. Ram RAM 16 is implemented using lkbyte of embedded RAM. In 
another embodiment, key memory 20 is implemented using a separate memory device. In 
general key memory 20 is implemented using non-volatile memory such as E 2 PROM, Flash 
EPROM, battery backed RAM, or Ferro RAM (FRAM). Re-programmability is an issue in 
the keying device because the device is reusable to reprogram any number of terminals 200. 

[00028] It will be apparent to those of ordinary skill in the pertinent art that modifications 
and variations can be made to RF controller 216, RF transceiver 218, and antenna 220 of the 
present invention depending on cost and implementation considerations. For example, in 
Figur e Fig . 1 and Figur e Fig . 2, a low power/close proximity RF system is depicted. In this 
embodiment, transceiver 24 outputs approximately 1 milli Watt milliwatt and has an effective 
range of about 1 meter of less. In another embodiment, the RF components are replaced 
altogether by an infrared optical communications system. In yet another embodiment, the RF 
components are replaced by an audio communications system that employs DTMF 
technology. 

[00029] Referring back to Figur e Fig. 1 , any type of electronic terminal 200 can be 
employed in system 10 of the present invention. In one embodiment, electronic terminal 200 
is a simple hard wired terminal. In other embodiments, terminal 200 is a keypad, signature 
pad, card reader, bar code reader, or a POS retail transaction terminal. In yet another 
embodiment, electronic terminal 200 is a stand alone unit. In an alternate embodiment, 
electronic terminal 200 is networked to a LAN. In the example depicted in Figufe Fig. 1, 
electronic terminal 200 includes I/O circuit 202, processor 204, RAM 206, EROM 208, key 
memory 214 and RF controller 216 coupled by way of system bus 222. In this example, 
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terminal 200 includes imaging assembly 208 for image scanning purposes. Image assembly 
208 is controlled by processor 204. Imaging data generated by image assembly 208 is written 
into RAM 206 by way of DMA channel 210. RF controller 216 is connected to RF 
transceiver 218. RF transceiver 218 is connected to antenna 220. 

[00030] In another embodiment, processor 204 includes a general purpose processor and 
an additional processor to handle secure information including the encryption key. In this 
embodiment, the additional processor is programmed to handle I/O functions involving a 
keypad and display. Key memory 214 is embedded in the security processor. 

[0003 1] It will be apparent to those of ordinary skill in the pertinent art that modifications 
and variations can be made to key memory 214 of the present invention depending on cost, 
security, and re-programmability considerations. In one embodiment key memory 214 is 
actually a memory location within EROM 18. In another embodiment, key memory 214 is 
implemented using a separate memory device. In general key memory 214 is implemented 
using non-volatile memory such as E 2 PROM } Flash EPROM, battery backed SRAM, or Ferro 
RAM (FRAM). One of the re-programmability considerations relates to the programming 
voltage required by key memory 214. Some memory devices require an additional 
programming voltage, over and above the normal system operating voltage, before being 
enabled to reprogram the contents of the memory. 

[00032] With respect to the other components of terminal 200 depicted in Figur e Fig. 1, 
modifications and variations are dependent on the type and complexity of terminal 200. 
Further, the communications components are dependent on the type of communications 
components present in portable keying device 100. 

[00033] As embodied herein, and depicted in Figur e Fig . 2, a perspective view of the 
portable key installation system depicted in fatfe Fig . 1 is disclosed. Electronic terminal 
200 includes housing 230, which accommodates keypad 232, display 234, card reader 236, 
cable 238 and antenna 220. As discussed above, terminal 200 can be a stand alone terminal 
or a networked device. Portable keying device 100 includes housing 102, keypad 120 and 
liquid crystal display 122. Figure Fig . 2 illustrates a secure communications protocol that 
avoids accidental erasure or reprogramming of the encryption key stored in key memory 214. 
In this embodiment, additional security is provided by keying system 10 by employing RF 
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components that include proximity features. The proximity features include power level S, 
angular directivity 9, and polarity P. Of course, the effective range of keying device 10 is a 
function of the power. If, for example, portable keying device 100 is not within 1 meter, and 
is not pointing at antenna 220 (within, e.g., 15°), and does not emit an RF signal having a 
polarity that is matched to the RF system in terminal 200, the re -programming attempt will be 
unsuccessful. 

[00034] As embodied herein, and depicted in Figur e Fig. 3, a chart showing a method for 
installing a security key in an electronic terminal using a portable device is disclosed. In step 
S300, portable device 100 and electronic terminal exchange handshaking messages. First, 
portable device 100 must satisfy the distance, angular directivity, and polarity requirements 
discussed above. Second, portable device 100 and electronic terminal 200 exchange 
authentication codes. Subsequently, in step S302, portable device 100 transmits an 
authorization code to electronic terminal 200. The transmitted authorization code must match 
the authorization code stored in EROM 212 of terminal 200. If the authorization codes 
match, portable device 100 transmits an installation message in step S304. The installation 
message includes the encryption key to be installed. In step S306, terminal 200 retransmits 
the encryption key to portable device 100. Portable device 100 validates the key by 
comparing the key that it received from terminal 200 in step S306 with the key it sent to 
terminal 200 in step S304. If the two keys do not match, portable device 100 performs step 
S304 over again. As shown in steps S308 - S3 14, device 100 displays an error message to 
the user after several unsuccessful attempts, indicating that a successful transfer of the key 
could not be performed. If the key is validated in step S306, processor 204 writes the 
encryption key into secure key memory 214 in step S3 16. 

[00035] In an alternate embodiment, step S306 includes additional steps. Portable device 
100 transmits a test encryption key that it believes is currently being stored in key memory 
214. If the test encryption key matches the current encryption key, terminal 200 transmits an 
acknowledgment signal. If the keys do not match, the installation procedure is aborted. 
Upon receiving the acknowledgment signal, portable device 100 transmits the new encryption 
key to terminal 200. If the new key is validated in step S306, processor 204 writes the 
encryption key into secure key memory 214, and the procedure is complete. 
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[00036] As embodied herein and depicted in Figur e Fig. 4, a chart showing a method for 
installing security keys in a plurality of electronic terminals is disclosed. As shown in step 
S400, an initial key is downloaded into memory 16 of portable keying device 100. This step 
can be performed using keypad 120, or performed electronically using an external computer, 
or some other such device. Processor 14 uses the initial key to generate encryption keys for a 
plurality of devices by running a secure key generation algorithm. In step S402, the 
algorithm is used to generate one encryption key. In step S 404, the method depicted in 
Figure Fig . 3 is employed to install the encryption key in the first terminal. If there are 
additional terminals to be programmed, steps S402 - S406 are repeated until encryption keys 
are installed in all of the terminals 200. 

[00037] As embodied herein, and depicted in Figur e Fig . 5 A, a diagrammatic depiction of 
electronic terminal 200 in accordance with a second embodiment of the present invention is 
disclosed. In this embodiment, key memory 214 requires an external programming voltage. 
As described above, terminal 200 includes processor 204, key memory 214, transceiver 218 
and antenna 220. In this example it is assumed that terminal 200 is boxed in a shipping 
container of some sort. Thus, terminal 200 is not connected to any external power supply. 
However, terminal 200 includes diode 240, normal operating voltage supply 250 and 
programming voltage supply 260. Normal operating voltage supply 250 includes capacitor 
252, capacitor 254, and voltage regulator 256. Programming operating voltage supply 260 
includes capacitor 262, capacitor 264, and voltage regulator 266. When portable device 100 
transmits an RF signal to terminal 200, diode 240 rectifies the AC-RF signal and pr e vent 
prevents any return signal from damaging the RF components. The resultant DC signal is 
used to charge up capacitors 252, 254, 262 and 264. Voltage regulator 256 ensures that the 
power supplied to terminal 200 is within system operating parameters. Voltage regulator 266 
ensures that memory 214 receives an acceptable programming voltage. In response to the 
normal operating voltage supplied by supply 250, terminal 200 is energized and ready for key 
installation. At the proper time, e.g. during step S308 (See Figttfe Fig. 3), processor 204 
activates switch 262 and supply 260 provides memory 214 with the programming voltage 
required to store the new encryption key therein. Figure Fig . 5B is an alternative 
embodiment of Figur e Fig . 5 A. In the alternative embodiment, switch 262 is connected to the 
output of normal operating voltage supply 250 instead of being connected to the input of key 
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memory 214 as in Figur e Fig . 5 A. Functionally, there is very little difference between the 
two alternative embodiments. 

[00038] As embodied herein, and depicted in Figur e Fig . 6, a diagrammatic depiction of an 
electronic terminal in accordance with a third embodiment of the present invention is 
disclosed. In this embodiment, battery 242 is included within terminal 200 to provide a 
normal operating voltage. Diode 240 is included to rectify the RF signal and prevent any 
return signals from damaging the RF components. Programming operating voltage supply 
250 is included to provide programming voltage to key memory 214. Programming 
operating voltage supply 250 includes capacitor 254, capacitor 256, and voltage regulator 
258. When portable device 100 transmits an RF signal to terminal 200, diode 240 rectifies 
the AC-RF signal. The resultant DC signal is used to charge up capacitors 254 and 256. 
Again, at the proper time, e.g. during step S308 (See Figur e Fig . 3), processor 204 activates 
switch 252 and supply 250 provides memory 214 with the programming voltage required to 
store the new encryption key therein. 

[00039] As embodied herein, and depicted in Figure Fig . 7, a diagrammatic depiction of an 
electronic terminal in accordance with a fourth embodiment of the present invention is 
disclosed. In this embodiment, the required programming voltage is supplied internally. 
Battery 240 is included within terminal 200 to provide both the normal operating voltage and 
the programming voltage. In this embodiment battery 240 is coupled to programming 
voltage supply 250. Programming voltage supply 250 is identical to those depicted in Figure 
Fig . 5 A, Figur e Fig . 5B and Figur e Fig . 6. Since battery 240 supplies DC voltage to 
capacitors 254 and 256, no rectifying diode is needed. Yet again, at the proper time, e.g. 
during step S308 (See Figure Fig. 3), processor 204 activates switch 252 and programming 
supply 250 provides memory 214 with the programming voltage required to store the new 
encryption key therein. 

[00040] The present invention addresses the needs discussed above. The present invention 
provides a system and method for securely reprogramming the security information in an 
electronic terminal without having to ship the terminal off site. The present invention 
provides a system and method for securely reprogramming the security information in an 
electronic terminal without having to remove the terminal from its shipping container, 
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dismantle the terminal, deactivate the anti-tampering features, reload the security 
information, and re -bond the terminal. 

[0004 1 ] One aspect of the present invention is a portable keying device for installing a data 
communications encryption key in at least one electronic terminal. The electronic terminal 
includes a secure encryption key memory location for storing at least one data 
communications encryption key. The device includes a memory device for storing the at 
least one data communications encryption key. A communications unit is coupled to the 
memory device, the communications unit being operative to transmit the at least one data 
communications encryption key in a predetermined format to the electronic terminal. 

[00042] In another aspect, the present invention includes a method for installing a data 
communications encryption key in an electronic terminal. The electronic terminal including 
a secure encryption key memory location for storing the at least one data communications 
encryption key. The method includes: providing a portable keying device, whereby the 
portable keying device is physically separated from the electronic terminal; performing a 
handshaking routine, whereby the keying device and the electronic terminal exchange 
handshaking messages; transmitting an encryption key from the portable keying device to the 
electronic terminal; and storing the encryption key transmitted from the portable keying 
device to the electronic terminal in the secure key memory location. 

[00043] In vet another aspect, the present invention includes a portable key installation 
system for installing a data communications encryption key. The system includes at least one 
electronic terminal having a secure encryption key memory adapted to store the at least one 
data communications encryption key, and a terminal communications unit coupled to the 
secure encryption key memory. A portable keying device includes a memory adapted to 
store the at least one data communications encryption key, and a device communications unit 
coupled to the memory device, the device communications unit being adapted to bi- 
directionally communicate the at least one data communications encryption key in a 
predetermined format to the terminal communications unit. 

[00044] Additional features and advantages of the invention are set forth in the detailed 
description herein, and in part will be readily apparent to those skilled in the art from that 
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description or recognized by practicing the invention as described herein, including the 
detailed description which follows, the claims, as well as the appended drawings. 

[00045] It is to be understood that the descriptions herein are merely exemplary of the 
invention, and are intended to provide an overview or framework for understanding the 
nature and character of the invention as it is claimed. The accompanying drawings are 
included to provide a further understanding of the invention, and are incorporated in and 
constitute a part of this specification. The drawings illustrate various embodiments of the 
invention, and together with the description serve to explain the principles and operation of 
the invention. 

[00046] There is described herein (Al) A portable keying device for installing a data 
communications encryption key in at least one electronic terminal, the electronic terminal 
including a secure encryption key memory location for storing at least one data 
communications encryption key, the device comprising: a memory device for storing the at 
least one data communications encryption key; and a communications unit coupled to the 
memory device, the communications unit being operative to transmit the at least one data 
communications encryption key in a predetermined format to the electronic terminal. There 
is also described (A2) The device of Al, wherein the communications unit includes a low 
power close proximity RF transceiver. There is also described (A3) The device of A2, 
wherein the predetermined format includes transmitting an RF signal at a predetermined 
power level. There is also described (A4) The device of A3, wherein the predetermined 
power level is less than or equal to lmW. There is also described (A5) The device of A3, 
wherein the RF signal has an effective range of less than or equal to a meter. There is also 
described (A6) The device of A2, wherein the predetermined format includes transmitting an 
RF signal in a predetermined direction. There is also described (A7) The device of A2, 
wherein the predetermined format includes transmitting an RF signal having a predetermined 
polarity. There is also described fA8) The device of Al, wherein the at least one data 
communications encryption key is installed in the electronic terminal in accordance with a 
predetermined protocol. There is also described (A9) The device of A8, wherein the 
predetermined protocol includes: performing a handshaking routine, whereby the keying 
device and the electronic terminal exchange handshaking messages; transmitting the at least 
one data communications encryption key from the keying device to the electronic terminal in 
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response to a successful handshaking routine; validating the step of transmitting by 
retransmitting the at least one data communications encryption key from the electronic 
terminal to the keying device, whereby the keying device compares the transmitted data 
communications encryption key to the retransmitted data communications encryption key; 
and storing the at least one data communications encryption key in the secure encryption key 
memory location in response to a successful step of validating. There is also described (A 10) 
The device of A8, wherein the step of validating includes transmitting a test data 
communications encryption key from the keying device to the electronic terminal. There is 
also described (All) The device of A 10, wherein the electronic terminal compares the test 
data communications encryption key with a currently in-use data communications encryption 
key stored in the secure encryption key memory location. There is also described (A12) The 
device of Al, wherein the secure encryption key memory location is a memory location in 
non-volatile memory. There is also described (A13) The device of A12, wherein the non- 
volatile memory includes E 2 PROM. There is also described (A 14) The device of A12, 
wherein the non-volatile memory includes EPROM. There is also described (A 15) The 
device of A 12, wherein the non-volatile memory includes Flash memory. There is also 
described (A 16) The device of A 12, wherein the non-volatile memory includes battery 
backed RAM. There is also described (A 17) The device of A 12, wherein the non-volatile 
memory includes Ferro RAM. There is also described (A 18) The device of Al, wherein the 
communications unit includes an optical signaling unit. There is also described (A19) The 
device of A18, wherein the optical signaling unit is operative to transmit infrared radiation. 
There is also described (A20) The device of Al wherein the communications unit includes 
an audio signaling unit. There is also described (A21) The device of A20, wherein the audio 
signaling unit communicates using DTMF signaling. There is also described (A22) The 
device of Al, further comprising an I/O device for receiving an encryption key from an 
external source. There is also described (A23) The device of A22, wherein the I/O device 
includes a keypad, the keypad being adapted to enter the at least one data communications 
encryption key. There is also described f A24) The device of A22, wherein the I/O device 
includes an external device interface adapted to receive the at least one data communications 
encryption key from an external device. There is also described (A25) The device of Al, 
further comprising: an I/O device for receiving an initial encryption key from an external 
encryption key source; and a processor coupled to the I/O device, the processor being 
programmed to generate the at least one data communications encryption key from the initial 
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encryption key using a secure key generation algorithm. There is also described (A26) The 
device of A25, wherein the I/O device includes a keypad, the keypad being adapted to enter 
the initial encryption key. There is also described (A27) The device of A2S, wherein the I/O 
device includes an external device interface adapted to receive the initial encryption key from 
an external device. 

[00047] There is also described (BP A method for installing a data communications 
encryption key in an electronic terminal, the electronic terminal including a secure encryption 
key memory location for storing the at least one data communications encryption key, the 
method comprising: providing a portable keying device, whereby the portable keying device 
is physically separated from the electronic terminal; performing a handshaking routine, 
whereby the keying device and the electronic terminal exchange handshaking messages; 
transmitting an encryption key from the portable keying device to the electronic terminal; and 
storing the encryption key transmitted from the portable keying device to the electronic 
terminal in the secure key memory location. There is also described (B2) The method of Bl, 
wherein the step of performing a handshaking routine includes transmitting an authorization 
signal from the portable keying device to the electronic terminal. There is also described 
(B3) The method of B2, wherein the portable keying device provides the electronic terminal 
with a predetermined authorization code during the step of transmitting an authorization 
signal. There is also described (B4) The method of Bl, wherein the step of performing a 
handshaking routine includes transmitting RF signals having at least one predetermined 
transmission characteristic. There is also described (B5) The method of B4, wherein the at 
least one predetermined transmission characteristic includes transmitting an RF signal having 
a predetermined range. There is also described (B6) The method of B4, wherein the at least 
one predetermined transmission characteristic includes transmitting an RF signal in a 
predetermined direction. There is also described (B7) The method of B4, wherein the at least 
one predetermined transmission characteristic includes a transmitting an RF signal having a 
predetermined polarity. There is also described (B8) The method of claim B4, wherein the at 
least one predetermined transmission characteristic includes transmitting an RF signal having 
a predetermined modulation format that is characterized by a predetermined programming 
voltage. There is also described (B9) The method of B2, wherein the step of transmitting an 
encryption key further comprises: transmitting the at least one data communications 
encryption key from the keying device to the electronic terminal in response to a successful 

14 



Express Mail Label No. EM2035041 89US 
Attorney Docket No. 283-299 
PATENT 

handshaking routine; validating the step of transmitting by retransmitting the at least one data 
communications encryption key from the electronic terminal to the keying device, whereby 
the keying device compares the transmitted data communications encryption key to the 
retransmitted data communications encryption key; and storing the at least one data 
communications encryption key in the secure encryption key memory location in response to 
a successful step of validating. There is also described (BIO) The method of B9, wherein the 
step of validating includes transmitting a test data communications encryption key from the 
keying device to the electronic terminal before transmitting the at least one data 
communications encryption key. There is also described (BID The method of B 1 0, wherein 
the step of validating includes the electronic terminal comparing the test data 
communications encryption key with a currently in-use data communications encryption key 
stored in the secure encryption key memory location. There is also described (B12) The 
method of Bl„ wherein the step of performing a handshaking routine includes transmitting 
infrared signals having at least one predetermined transmission characteristic. There is also 
described (B13) The method of Bl, wherein the step of performing a handshaking routine 
includes transmitting audio signals having at least one predetermined transmission 
characteristic. There is also described (B14) The method of B13, wherein the audio signals 
include DTMF signals. 

[00048] There is also described (CI) A portable key installation system for installing a 
data communications encryption key, the system comprising: at least one electronic terminal 
having a secure encryption key memory adapted to store the at least one data communications 
encryption key, and a terminal communications unit coupled to the secure encryption key 
memory; and a portable keying device including a memory adapted to store the at least one 
data communications encryption key, and a device communications unit coupled to the 
memory device, the device communications unit being adapted to bi-directionally 
communicate the at least one data communications encryption. key in a predetermined format 
to the terminal communications unit. There is also described (C2) The device of CI, wherein 
the terminal communications unit and the device communications unit include low power- 
close proximity RF transceivers. There is also described (C3) The device of C2, wherein the 
predetermined format includes transmitting an RF signal at a predetermined power level. 
There is also described (C4) The device of C3, wherein the predetermined power level is less 
than or equal to ImW. There is also described (C5) The device of C3, wherein the RF signal 
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has an effective range of less than or equal to a meter. There is also described (C6) The 
device of C2, wherein the predetermined format includes transmitting an RF signal in a 
predetermined direction. There is also described (CD The device of C2, wherein the 
predetermined format includes transmitting an RF signal having a predetermined polarity. 
There is also described (C8) The system of C2, wherein the at least one electronic terminal 
includes a programming voltage supply unit, the programming voltage supply unit being 
adapted to convert an RF signal transmitted by the device communications unit into 
programming voltage to thereby enable the secure encryption key memory to store the at least 
one data communications encryption key transmitted by the device communications unit. 
There is also described (C9) The system of C8, wherein the programming voltage supply unit 
comprises: at least one capacitor coupled to the RF transceiver; and a voltage regulator 
coupled to the at least one capacitor and the secure encryption key memory. There is also 
described (CIO) The system of C9, wherein the at least one capacitor includes a plurality of 
capacitors. There is also described (CI 1) The system of C9, further comprising a diode 
disposed between the programming voltage supply unit and the RF transceiver. There is also 
described (CI 2) The system of C90, further comprising a battery coupled to the programming 
voltage supply unit. There is also described (CI 3) The system of C9, further comprising a 
normal voltage supply unit, the normal voltage supply unit including: at least one second 
capacitor coupled to the RF transceiver; and a second voltage regulator coupled to the at least 
one second capacitor and the secure encryption key memory. There is also described (CI 4) 
The system of C9, further comprising a switch disposed between the programming voltage 
su pply unit and the secure encryption key memory, the programming voltage being supplied 
to the secure encryption key memory when the switch is closed. There is also described 
(CI 5) The system of C2, further comprising: a battery coupled to the RF transceiver of the 
electronic terminal; at least one capacitor coupled to the battery, the at least one capacitor 
being charged by the battery to generate a programming voltage, whereby the secure 
encryption key memory is enabled to store the at least one data communications encryption 
key transmitted by the device communications unit; and a voltage regulator coupled to the at 
least one capacitor. There is also described (CI 6) The system of CI 5, further comprising a 
switch disposed between the at least one capacitor and the secure encryption key memory, the 
programming voltage being supplied to the secure encryption key memory when the switch is 
closed. 
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[00049] It will be apparent to those skilled in the art that various modifications and 
variations can be made to the present invention without departing from the spirit and scope of 
the invention. Thus, it is intended that the present invention cover the modifications and 
variations of this invention provided they come within the scope of the appended claims and 
their equivalents. 
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